Organization Access Bindings
OrganizationAccessBindings
is an assignment of roles to a set of users or
teams to access resources under an Organization. The user or team
information is obtained from an LDAP server that should have been
configured as part of Service Bridge installation. Note that a
OrganizationAccessBinding
can be created or modified only by users who
have SET_POLICY
permission on the Organization.
The following example assigns the org-admin
role to users
alice
, bob
, and members of the t1
team owned by the organization
myorg
.
apiVersion: rbac.tsb.tetrate.io/v2
kind: OrganizationAccessBindings
metadata:
organization: myorg
spec:
allow:
- role: rbac/org-admin
subjects:
- user: alice
- user: bob
- team: t1
OrganizationAccessBindings
OrganizationAccessBindings
assigns permissions to users of organizations.
Field | Description | Validation Rule |
allow | List of tetrateio.api.tsb.rbac.v2.Binding | – |